alibabacloud-oos-chatops-agent

Pass

Audited by Gen Agent Trust Hub on Jul 1, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill facilitates cloud resource management through official Alibaba Cloud APIs and SDKs.
  • [SAFE]: Includes explicit security constraints for the AI agent, strictly forbidding the output or leakage of sensitive credential values (AccessKeys) from environment variables or configuration files.
  • [SAFE]: Uses robust boundary markers (=== OOS CHATOPS ANSWER BEGIN ===) to encapsulate remote tool output. This provides a 'single source of truth' and mitigates risks associated with indirect prompt injection or data hallucination.
  • [EXTERNAL_DOWNLOADS]: Dependencies are restricted to official, version-pinned Alibaba Cloud libraries (alibabacloud-tea-openapi-sse, alibabacloud-credentials, etc.) sourced from standard public registries.
  • [SAFE]: The implementation of observability headers (User-Agent with session-id) follows standard engineering practices and does not involve exfiltration of sensitive user data.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 1, 2026, 12:35 PM
Security Audit — agent-trust-hub — alibabacloud-oos-chatops-agent